Presentation is loading. Please wait.

Presentation is loading. Please wait.

Sway4-1 NabiTel Component : Security Manager  User Administration : 사용자 등록 관리  Global Sign-On : 사용자 Log On 관리  Security Manager : 보안 정책 생성 및 적용 관리 

Published byRoss Bates Modified over 9 years ago

Similar presentations

Presentation on theme: "Sway4-1 NabiTel Component : Security Manager  User Administration : 사용자 등록 관리  Global Sign-On : 사용자 Log On 관리  Security Manager : 보안 정책 생성 및 적용 관리 "— Presentation transcript:

1 Sway4-1 NabiTel Component : Security Manager  User Administration : 사용자 등록 관리  Global Sign-On : 사용자 Log On 관리  Security Manager : 보안 정책 생성 및 적용 관리  Policy Director : 웹 서버 접근 관리  Privacy Manager : 개인 정보 접근 관리  Risk Manager : 침입 위험 관리  PKI : 공개 키를 이용한 인증 관리  User Administration : 사용자 등록 관리  Global Sign-On : 사용자 Log On 관리  Security Manager : 보안 정책 생성 및 적용 관리  Policy Director : 웹 서버 접근 관리  Privacy Manager : 개인 정보 접근 관리  Risk Manager : 침입 위험 관리  PKI : 공개 키를 이용한 인증 관리

2 Sway4-2 NabiTel Component : Security Manager - 특징  Comprehensive, integrated access management solution  Multiple platforms with a single security model  Role-based centralized security  Comprehensive Solution  Actively prevent unauthorized access  Security engine for UNIX servers : TACF  Solves the UNIX root-user problem  Architecture consistent with RACF in OS/390  Comprehensive, integrated access management solution  Multiple platforms with a single security model  Role-based centralized security  Comprehensive Solution  Actively prevent unauthorized access  Security engine for UNIX servers : TACF  Solves the UNIX root-user problem  Architecture consistent with RACF in OS/390

3 Sway4-3 NabiTel Component : Security Manager - 특징 ( 계속 )  Flexible auditing capabilities  Focus on particular groups or resources  Focus on security priorities, enterprise-security policy  Cross-Platform Security Management  Resolves disparate security models  Transparent to mainframe and distributed security model  Consistent enforcement of security policy  Across geographic and platform boundaries  Flexible auditing capabilities  Focus on particular groups or resources  Focus on security priorities, enterprise-security policy  Cross-Platform Security Management  Resolves disparate security models  Transparent to mainframe and distributed security model  Consistent enforcement of security policy  Across geographic and platform boundaries

4 Sway4-4 NabiTel Component : Security Manager - 특징 ( 계속 )  Improved productivity  Consistent user interface  Endpoints subscription to Security Profile Configuration  Automated security tasks  Secure delegation of maintenance tasks to junior level  Tivoli Management  TEC and Distributed Monitoring for security alarm  Integrated with User Administration  Improved productivity  Consistent user interface  Endpoints subscription to Security Profile Configuration  Automated security tasks  Secure delegation of maintenance tasks to junior level  Tivoli Management  TEC and Distributed Monitoring for security alarm  Integrated with User Administration

5 Sway4-5 NabiTel Component : Security Manager - 특징 ( 계속 )  Open Security Management  Extensions in Security Manager and User Administration  Guided by the Security Management Working Group  Axent, Check Point Software, CyberSafe, Cygnus  IBM, Internet Security Systems (ISS), MEMCO  Mergent, Security Dynamics  Trusted Information Systems  Allow you to manage other security tasks  Provides solutions to improve productivity and integration  Open Security Management  Extensions in Security Manager and User Administration  Guided by the Security Management Working Group  Axent, Check Point Software, CyberSafe, Cygnus  IBM, Internet Security Systems (ISS), MEMCO  Mergent, Security Dynamics  Trusted Information Systems  Allow you to manage other security tasks  Provides solutions to improve productivity and integration

6 Sway4-6 NabiTel Corporate Security Policies Login Restrictions Password Rules Files, Resources Access Times Systems, Apps Groups, Roles Tivoli Security Manager Groups Finance/Accounting IS Purchasing Sales Roles Line Mgrs Payables Contractor Operator/Admin Resources Systems Applications Information Databases Networks Component : Security Manager - Architecture

7 Sway4-7 NabiTel Central Security Admin. Applications, Other Lockdown Modules UNIX PDOS NT RACF OS/390 OS/2 Netware OS/400 Endpoint Subscribers Access Audit System Policy Director Component : Security Manager - Consistent Enforcement

8 Sway4-8 NabiTel  접근 제어 결정 엔진의 성능 향상  PDOS 엔진 : multi-thread 기반 설계 (PD for Operating System)  SeOS : single thread 기반 설계 (Security Operating System, Memco)  접근 제어 결정 시간이 SeOS 에 비해 절반 이상으로 절약됨  접근 제어 결정을 위해 사용되었던 모든 데이터는 재사용됨  PD Architecture 의 이점  계층적 파일 시스템 상에서 ACL 상속 가능  Branch 개념 : 자동 구성  부가적인 새로운 기능 : 감사 기능  접근 제어 결정 엔진의 성능 향상  PDOS 엔진 : multi-thread 기반 설계 (PD for Operating System)  SeOS : single thread 기반 설계 (Security Operating System, Memco)  접근 제어 결정 시간이 SeOS 에 비해 절반 이상으로 절약됨  접근 제어 결정을 위해 사용되었던 모든 데이터는 재사용됨  PD Architecture 의 이점  계층적 파일 시스템 상에서 ACL 상속 가능  Branch 개념 : 자동 구성  부가적인 새로운 기능 : 감사 기능 Component : Security Manager - PDOS vs SeOS

9 Sway4-9 NabiTel Component : Security Manager - PDOS vs SeOS

10 Sway4-10 NabiTel Tivoli SecureWay Security Manager Tivoli Gateway UNIX Servers UX1UX2UX..n Tivoli SecureWay Policy Director Cache Management PDOS Component : Security Manager - PDOS Position

11 Sway4-11 NabiTel Component : Security Manager - PDOS Flow

12 Sway4-12 NabiTel Component : Security Manager - Audit & Report  감사와 로그 내용  Security administrator actions  Login attempts  Resource access  감사 보고서 생성  By user  By resource or resource type  By date/time range  By system  정책 보고서  User to role  User to resource relationships….  감사와 로그 내용  Security administrator actions  Login attempts  Resource access  감사 보고서 생성  By user  By resource or resource type  By date/time range  By system  정책 보고서  User to role  User to resource relationships….

13 Sway4-13 NabiTel Component : Security Manager - 효과  Single Point with All  관리 집중화  모든 대상 관리  단일 Interface  PDOS: UNIX 관리 엔진  TACF 의 핵심  SeOS Migration 지원  탁월한 발전성, 통합성  생산성 증대  관리 효율성 향상  Single Point with All  관리 집중화  모든 대상 관리  단일 Interface  PDOS: UNIX 관리 엔진  TACF 의 핵심  SeOS Migration 지원  탁월한 발전성, 통합성  생산성 증대  관리 효율성 향상 Sun HP AIX NetWare NT Administrator Notes/Domino OS/390 AS/400 Unix OS/2 Security Manager Uniform GUI

14 Sway4-14 NabiTel Component : Security Manager - Platform  Tivoli Agent  AIX  HP-UX  Sun Solaris  Windows NT  OS/390 Security Server (RACF)  AS/400  OS/2  NetWare NDS  Tivoli Agent  AIX  HP-UX  Sun Solaris  Windows NT  OS/390 Security Server (RACF)  AS/400  OS/2  NetWare NDS  Tivoli Server  AIX  HP-UX  Sun Solaris  Windows  Tivoli Server  AIX  HP-UX  Sun Solaris  Windows

Download ppt "Sway4-1 NabiTel Component : Security Manager  User Administration : 사용자 등록 관리  Global Sign-On : 사용자 Log On 관리  Security Manager : 보안 정책 생성 및 적용 관리 "

Similar presentations

Auditing Microsoft Active Directory

Auditing Microsoft Active Directory
Overview of local security issues in Campus Grid environments Bruce Beckles University of Cambridge Computing Service.

Overview of local security issues in Campus Grid environments Bruce Beckles University of Cambridge Computing Service.
Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM

Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM
Complete Event Log Viewing, Monitoring and Management.

Complete Event Log Viewing, Monitoring and Management.
Windows IT Pro magazine Datacenter solution with lower infrastructure costs and OPEX savings from increased operational efficiencies. Datacenter.

Windows IT Pro magazine Datacenter solution with lower infrastructure costs and OPEX savings from increased operational efficiencies. Datacenter.
Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.

Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.
The System Center Family Microsoft. Mobile Device Manager 2008.

The System Center Family Microsoft. Mobile Device Manager 2008.
Donnie Hamlett Technology Specialist Microsoft Corporation Microsoft Services for NetWare 5.0 Overview Overview Directory Synchronization Services Directory.

Donnie Hamlett Technology Specialist Microsoft Corporation Microsoft Services for NetWare 5.0 Overview Overview Directory Synchronization Services Directory.
Distributed Systems Topics What is a Distributed System?

Distributed Systems Topics What is a Distributed System?
Complete Event Log Viewing, Monitoring and Management.

Complete Event Log Viewing, Monitoring and Management.
Privileged Account Management Jason Fehrenbach, Product Manager.

Privileged Account Management Jason Fehrenbach, Product Manager.
Sway3-1 NabiTel Component : Global Sign-On  User Administration : 사용자 등록 관리  Global Sign-On : 사용자 Log On 관리  Security Manager : 보안 정책 생성 및 적용 관리  Policy.

Sway3-1 NabiTel Component : Global Sign-On  User Administration : 사용자 등록 관리  Global Sign-On : 사용자 Log On 관리  Security Manager : 보안 정책 생성 및 적용 관리  Policy.
Chapter 7 LAN Operating Systems LAN Software Software Compatibility Network Operating System (NOP) Architecture NOP Functions NOP Trends.

Chapter 7 LAN Operating Systems LAN Software Software Compatibility Network Operating System (NOP) Architecture NOP Functions NOP Trends.
Distributed Systems 1 Topics  What is a Distributed System?  Why Distributed Systems?  Examples of Distributed Systems  Distributed System Requirements.

Distributed Systems 1 Topics  What is a Distributed System?  Why Distributed Systems?  Examples of Distributed Systems  Distributed System Requirements.
Active Directory: Final Solution to Enterprise System Integration

Active Directory: Final Solution to Enterprise System Integration
Unified Logs and Reporting for Hybrid Centralized Management

Unified Logs and Reporting for Hybrid Centralized Management
Lesson 17 – UNDERSTANDING OTHER NETWARE SERVICES.

Lesson 17 – UNDERSTANDING OTHER NETWARE SERVICES.
ADVANCED LINUX SECURITY. Abstract : Using mandatory access control greatly increases the security of an operating system. SELinux, which is an implementation.

ADVANCED LINUX SECURITY. Abstract : Using mandatory access control greatly increases the security of an operating system. SELinux, which is an implementation.
Monitor Linux OS health & performance Monitor log files Monitor JEE app servers Monitor line-of-business applications Monitor databases and web.

Monitor Linux OS health & performance Monitor log files Monitor JEE app servers Monitor line-of-business applications Monitor databases and web.
A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.

A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.

Similar presentations

Ads by Google